返回 CVE 瀏覽器

CVE-2002-2208

HIGH

7.8

CVSS Severity Score

EPSS Score0.0060%

EPSS Percentile31.71th

Published2002年12月31日

Last Modified2026年4月16日

Vulnerability Description

Extended Interior Gateway Routing Protocol (EIGRP), as implemented in Cisco IOS 11.3 through 12.2 and other products, allows remote attackers to cause a denial of service (flood) by sending a large number of spoofed EIGRP neighbor announcements, which results in an ARP storm on the local network.

Affected Platforms (CPE)

📦

Extended Interior Gateway Routing Protocol

Extended Interior Gateway Routing Protocol

= 1.2

💻

Cisco

Ios

= 11.3

💻

Cisco

Ios

= 12.0

💻

Cisco

Ios

= 12.1

💻

Cisco

Ios

= 12.2

References & Advisories

🔗 http://lists.grok.org.uk/pipermail/full-disclosure/2005-December/040330.html

🔗 http://marc.info/?l=full-disclosure&m=113504451523186&w=2

🔗 http://secunia.com/advisories/7766

🔗 http://securitytracker.com/id?1005840

🔗 http://www.cisco.com/en/US/tech/tk365/technologies_security_notice09186a008011c5e1.html

🔗 http://www.cisco.com/warp/public/707/eigrp_issue.pdf

🔗 http://www.osvdb.org/18055

🔗 http://www.securityfocus.com/archive/1/304034

相關漏洞威脅

CVE-2005-44367.8

Extended Interior Gateway Routing Protocol (EIGRP) 1.2, as implemented in Cisco IOS after 12.3(2), 12.3(3)B, and 12.3(2)T and othe...

CVE-2005-44377.5

MD5 Neighbor Authentication in Extended Interior Gateway Routing Protocol (EIGRP) 1.2, as implemented in Cisco IOS 11.3 and later,...

CVE-2002-074710.0

Buffer overflow in lsmcode in AIX 4.3.3.

CVE-2002-136910.0

jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing...